Unable to login due to incorrect default of Cookie Domains in config.php.dist

[gbonny1982]

Yesterday I was able to login on 1.2.11, I cannot anymore now.

I've upgraded yesterday cacti & spine from 1.2.7 to 1.2.11. I was not able to install cacti with templates, stuck on 42% twice, so deselected them. Pre-requisite checks were all fine.

I did restart apache2, did a reboot, tried different browser, in privacy mode too. I'm glad I have snapshots.. Nothing related in cacti.log or cacti_stderr.log.

[anarkia1976]

I can confirm the problem when we upgraded release from 1.2.10 to 1.2.11, we can fix the problem with a restore of the previous release. thanks a lot.

[securitytheatre]

same here. upgrade from 1.2.10 to 1.2.11 stuck on the templates; install didn't complete.
attached the end of my install-complete.log:

install-complete.log

how to I restore back to a previous release? I have the database and website backed up. thank you

[bmfmancini]

@batman978 to restore copy the website files back then restore the db
mysql -u root -p cacti < cacti_back_file.sql

I have not been able to reproduce this yet

[bmfmancini]

Yes I can reproduce this
Upgrade from 1.2.10 to 1.2.11 I was able to login after the install but unable to after I logged out
checking more

[bmfmancini]

Seeing the following in the browser console when trying to login

Unchecked runtime.lastError: The message port closed before a response was received.

[KnoAll]

I have also seen trouble logging in after upgrade. On one of my tests login to v1.2.3, upgrade to 1.2.11, can no longer log in. Trying to find a way to reproduce consistently

[bmfmancini]

I upgraded from 1.2.9 to 1.2.11 just fine but I tried this in the lab and it does fail
seems to be a DB level issue though I think the upgrade process kills the auth

The code its self should be fine as a fresh install works just fine
I have not seen any PHP errors or anything like that
also I noticed even if you enter bogus creds cacti doesn't come back with an invalid user message almost like the login didnt procces at all

[bmfmancini]

Ok I re-did the upgrade but stayed logged in so I could enable devel logging
here is the call when a user is created

2020/04/08 12:16:08 - DBCALL DEVEL: SQL Save on table 'user_auth': 'a:18:{s:2:"id";s:1:"0";s:8:"username";s:5:"test2";s:9:"full_name";s:0:"";s:8:"password";s:60:"$2y$10$/78T/rNdHLacsQJgjEa6GOXl8eLeaFe8k8UtZR.8ZN6vryLejqv6q";s:20:"must_change_password";s:0:"";s:15:"password_change";s:2:"on";s:9:"show_tree";s:2:"on";s:9:"show_list";s:2:"on";s:12:"show_preview";s:2:"on";s:14:"graph_settings";s:2:"on";s:10:"login_opts";s:1:"1";s:5:"realm";s:1:"0";s:16:"password_history";b:0;s:7:"enabled";s:2:"on";s:13:"email_address";s:0:"";s:6:"locked";s:0:"";s:11:"reset_perms";i:416694879;s:15:"failed_attempts";i:0;}'

[KnoAll]

Trying to manually reset the pw in mysql does not seem to help either.

[gbonny1982]

fwiw, I've followed this upgrade guide:
https://www.cacti.net/downloads/docs/html/upgrade.html

I have cacti downloaded & extracted to /opt/cacti

Updated user/password/database:

sudo vim cacti/include/config.php

Copied scripts / rra / resource from previous install.

additionally:

cd cacti
sudo chown -R www-data.www-data /opt/cacti/
sudo chown -R cactiuser.www-data rra/
sudo touch log/cacti.log
sudo chmod 664 log/cacti.log
sudo touch log/cacti_stderr.log
sudo chmod 664 log/cacti_stderr.log
sudo chown -R cactiuser:www-data log/
sudo chown -R cactiuser.www-data cache/

and then followed install/upgrade instructions in webbrowser.

download & extract spine in /opt/cacti-spine/

additionally:

cd cacti-spine
sudo ./bootstrap
sudo ./configure
sudo make
sudo make install

sudo vim /opt/cacti-spine/spine.conf.dist
sudo vim /usr/local/spine/etc/spine.conf.dist

update database/user/passwd

to resolve: DEBUG Falling back to UDP Ping Due to SetUID Issues

cd /usr/local/spine/bin/
sudo chmod u+s spine

[bmfmancini]

Tried on ie,chrome,firefox all doing the same thing
cookie based Auth works fine

[bmfmancini]

Wait a minute...are you guys using centos/rhel ?
I just tested with Ubuntu and its working fine....

[KnoAll]

Yes